Enabling Zero Trust Architectures using OAuth2.0 and Verifiable Credentials
(ZeroTrustVC) implements Authentication and Authorization for HTTP-based resources
using JWT-encoded Verifiable Credentials.
ZeroTrustVC is based on the research paper Capability-based access control for multi-tenant systems using OAuth 2.0 and Verifiable Credentials by N. Fotiou, V.A. Siris, G.C. Polyzos, appeared in 30th International Conference on Computer Communications and Networks (ICCCN).
ZeroTrustVC facilitates capabilities-based access control, supports efficient VC revocation, and enables "strong authentication and authorization of every access request" enabling resource access over public, untrusted networks, aka Zero -Trust Architectures (ZTAs).